| 摘要 |
Session data is encoded in a tag-length-value format and encrypted using a modified encryption key. A session cookie, formed by concatenating the length of the length of the secret, the length of the secret, the secret itself, and the encoded and encrypted configuration data, is transmitted from a server to a client. Each time the client begins a new communications session with the server that generated the session cookie, the session cookie is transmitted from the client to the server. The server receives the session cookie from the client and extracts the secret stored in the session cookie. Periodically, the server may request the new session cookie from the client to determine if the communications session between the client and the server is still active. If no response or an invalid session cookie is received, the communications session between the client and server is terminated. |
